Unspecified Remote Access Vulnerabilities in Plone

Unspecified Remote Access Vulnerabilities in Plone

CVE-2013-4189 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

Multiple unspecified vulnerabilities in (1) dataitems.py, (2) get.py, and (3) traverseName.py in Plone 2.1 through 4.1, 4.2.x through 4.2.5, and 4.3.x through 4.3.1 allow remote authenticated users with administrator access to a subtree to access nodes above the subtree via unknown vectors.

Learn more about our User Device Pen Test.